Source: freetype
Version: 2.8.1-1
Severity: important
Tags: security upstream


the following vulnerability was published for freetype.

| An issue was discovered in FreeType 2 through 2.9. A NULL pointer
| dereference in the Ins_GETVARIATION() function within ttinterp.c could
| lead to DoS via a crafted font file.

If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.

For further information see:


Please adjust the affected versions in the BTS as needed.


Secure-testing-team mailing list

Reply via email to